Roy 10,832 / 0 Report Post Posted September 28, 2019 Hey all, I made an announcement on the official Discord server, but wanted to post it here as well. I've enabled rate limiting for PHP requests on the website based off of the header IP (the real client's IP instead of CloudFlare's). This should help with any future DoS/DDoS attacks. Once the rate limiting was put in-place, a couple other stress testers and I could no longer take down the website (we were being successfully rate limited). Therefore, it's working out so far. I'm unsure how effective this will truly be on DDoS attacks, but depending on the size, it still may peg our web server. Though, at that point, we should be relying on CloudFlare and our hosting provider to filter the attack so it doesn't even reach the web server. Unless we had a lot of money to spend on a web server with enough cores to handle thousands of requests per second (coming from all different IPs), there's not much we can do with how much resources PHP and IPS 4 itself consume per request (which is a lot due to poor optimization within the software itself). We've also allocated more resources to our web server to take on more requests. Anyways, as of right now, the rate limiting is very strict. It does only apply to PHP files, though, since those hammer the server's CPU the most during attacks, etc. I'm not certain how stable our rate limiting will be at its current settings, so if anybody experiences errors while browsing the website, please let me know ASAP! We'll just have to see after the next few days. Thank you! Share this post Link to post Share on other sites More sharing options...
Roy 10,832 / 0 Report Post Posted September 28, 2019 Also wanted to say thank you to @Xy_ for the help along with our stress testers who were @mbs, @Garythegravy, and @car! Thank you. Share this post Link to post Share on other sites More sharing options...
mbs 365 / 8,846 Report Post Posted September 28, 2019 · Hidden Hidden this test has killed my fingers but it was very fun to do XD Former Manager On Hide and Seek Former Admin on prop hunt Former trail admin on breach Share this post Link to post
Roy 10,832 / 0 Report Post Posted September 28, 2019 2 minutes ago, mbs said: this test has killed my fingers but it was very fun to do XD You were at above 6000 requests the last I looked, so nice job Share this post Link to post Share on other sites More sharing options...
nblock 76 / 0 Report Post Posted September 28, 2019 · Hidden Hidden i think you meant to ping @car nerd Share this post Link to post
Lipquip 206 / 0 Report Post Posted September 28, 2019 · Hidden Hidden @nblock nope it was me and mbs Share this post Link to post
car 96 / 3,964 Report Post Posted September 28, 2019 · Hidden Hidden @Roy nope it was me and mbs @Garythegravy is big liar Add me on steam if you have something to talk about or if you know me from in game.Steam Profile Share this post Link to post
Roy 10,832 / 0 Report Post Posted September 28, 2019 39 minutes ago, car said: @Roy nope it was me and mbs @Garythegravy is big liar Now all three of you are tagged. Share this post Link to post Share on other sites More sharing options...
_Rocket_ 656 / 8,277 Report Post Posted September 28, 2019 · Hidden Hidden 1 minute ago, Roy said: Now all three of you are tagged. Now Roy is the only one tagged. Gottem Also darn it Roy, I was so close to hacking into your computer and you do this to me. You make a hakkurmanz job hard I write programs and stuff. If you need to contact me, here is my discord tag: Dustin#6688 I am a busy person. So responses may be delayed. Share this post Link to post
Jat 476 / 11,373 Report Post Posted September 28, 2019 · Hidden Hidden I helped more than @Garythegravy he did nothing Made By @Lynx Made By @Charmayy Made By @Gary Made By @Xy -Jat Share this post Link to post